gardnerhs_logo_jun19
gardnerhs_logo_jun19

TriZetto Data Breach FAQs

Notice: One of our vendors was impacted by a security incident, which affected some of our patients’ or their primary insured’s protected health information. Learn more.

ABOUT THE TRIZETTO PROVIDER SOLUTIONS DATA BREACH (LATE 2025)

  • Who: TriZetto Provider Solutions (TPS), a technology vendor for healthcare, suffered a breach exposing patient data.
  • What happened: Hackers accessed TPS’ web portals, stealing Protected Health Information (PHI) and Personally Identifiable Information (PII).
  • Impact: Affects many healthcare organizations including Gardner Health Services and their patients/members; potential risk for identity theft.
  • Kroll’s Role: Kroll was hired by TPS to provide identity theft monitoring and restoration services to affected individuals, hence the connection in notifications. Affected patients will receive a separate letter from Kroll and/or TPS that includes a unique code and instructions to enroll in credit monitoring services.

CÁC CÂU HỎI THƯỜNG GẶP

Q: Was Gardner Health Services hacked?
A: NO. Gardner Health Services (GHS) did not have a breach of its system. A business we use to help us with billing services called TriZetto Provider Solutions (TPS) noticed their system was impermissibly accessed.

Q: What happened with the breach?
A: TPS became aware of suspicious activity within a web portal that some of its business partners use to access its systems.

Q: When did the breach happen?
A: Tháng 10 2, 2025. TPS immediately investigated and fixed the issue. During its investigation TPS discovered the activity began in Tháng 11 2024. TPS notified GHS on Tháng 12 9, 2025.

Q: Was my information involved?
A: GHS sent letters to patients whose information was involved. If you did not receive a letter and your address with us is up-to-date, your information was not involved.

Q: What specific items of my personal information were involved?
A: Names, addresses, birthdates, Social Security numbers, health insurance member numbers (which, for some individuals, may be a Medicare beneficiary identifier), provider names, health insurer names, primary insured information, and other demographic, health, and health insurance information. The incident DID NOT affect any payment card, bank account, or other financial information.

Q: What is GHS doing about the breach? How will GHS prevent this from happening in the future?
A: The breach happened to TPS. GHS’ system was not hacked or accessed. Our system has been reviewed and is secure.

Q: Does this mean that I’m a victim of identity theft?
A: No. The fact that someone may have had access to your information doesn’t mean that you are a victim of identity theft or that your information will be used to commit fraud. We wanted to let you know about the incident so that you can take appropriate steps to protect yourself. The way to protect yourself is to place a fraud alert on your credit files, order your credit reports, and review them for possible problems.

Q: How will I know if any of my personal information was used by someone else?
A: The best way to find out is to order your credit reports from the three credit bureaus: Equifax, Experian and Trans Union. If you notice accounts on your credit report that you did not open or applications for credit (“inquiries”) that you did not make, these could be indications that someone else is using your personal information, without your permission.

Q: Do I have to pay for the credit reports?
A: No. You can order your credit reports from all three credit bureaus for free once a year. You can do this online at www.annualcreditreport.com, or by phone at 1-877-322-8228.

Q: What can I do?
A: You can place a fraud alert on your credit files. Simply call any one of the three credit bureaus at the numbers provided below and follow the “fraud victim” instructions. The one you call will notify the others to place the alert.

• Equifax 1-888-766-0008
• Experian 1-888-397-3742
• TransUnion 1-800-680-7289

Q: What else can I do to protect myself?
A: Although we have no evidence that any of your information has been subject to identity theft or fraud, you should always remain alert by regularly reviewing your account statements and monitoring free credit reports and immediately reporting to your banks and other financial institutions any suspicious activity involving your accounts. For more resources visit: https://www.irs.gov/identity-theft-fraud-scams/identity-protection. We also encourage you to enroll in the identity monitoring services that Kroll will offer to you soon.

Q: What is TPS doing?
A: TPS assured us that after becoming aware of the incident, it immediately took additional protective measures to safeguard its systems and worked with leading cybersecurity experts to conduct a comprehensive investigation of the incident. TPS notified law enforcement and is cooperating with their investigation. TPS has eliminated the threat to the environment. To help prevent similar incidents from happening in the future, TPS implemented and is continuing to implement additional security protocols designed to enhance the security of its services.

Q: The notice is addressed to my child, who is a minor. What should I do?
A: See the California Department of Justice’s information sheet When Your Child’s Identity Is Stolen on the Identity Theft page at https://oag.ca.gov/idtheft/facts/childs-identity

Q: The notice is addressed to my spouse, who is deceased. What should I do?
A: See the California Department of Justice’s information sheet Identity Theft and the Deceased on the Identity Theft page at https://oag.ca.gov/idtheft/facts/deceased

FOR MORE INFORMATION OR QUESTIONS REGARDING THE BREACH, PLEASE CONTACT:

Email: compliance@gfhn.org
Call Center: (408) 457-7100